Re: [squid-users] ntlm auth, unauthorized users without popup window
On Tue, 17 Jan 2006, [iso-8859-2] Horváth Szabolcs wrote: I've successfully configured squid to use ntlm authentication. If the authenticated users go through the proxy, the web page will be loaded. In the opposite side, if any unauthorized users want to browse, popup window appears (username, password). I know is the default behaviour. Is there any chance to not to popup authentication window in this case? Unfortunately not. The proxy can not tell if the user is authenticated or not before.. when the browser figures out that the proxy is requring authentication it pops up that popup, to the proxy the only difference to an already authenticated user is the delay in response from the browser while the user fills in the popup.. What you can control in the proxy is if a user which is denied access should be prompted anew for other user credentials allowing him to log in to the proxy with an account having the required permissions, or if he should immediately be given an access denied page. Regards Henrik
Re: [squid-users] ntlm auth, unauthorized users without popup window
"=?iso-8859-2?Q?Horv=E1th_Szabolcs?=" <[EMAIL PROTECTED]> writes: > Hi! > > I've successfully configured squid to use ntlm authentication. If the > authenticated users go through the proxy, the web page will be loaded. > In the opposite side, if any unauthorized users want to browse, popup window > appears (username, password). > > I know is the default behaviour. Is there any chance to not to popup > authentication window in this case? > > auth_param ntlm program /usr/bin/ntlm_auth > --helper-protocol=squid-2.5-ntlmssp > --require-membership-of=S-1-5-21-298725999-1398125-441284377-12796 > auth_param ntlm children 100 > auth_param ntlm max_challenge_reuses 100 > auth_param ntlm max_challenge_lifetime 5 minutes > > auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic > --require-membership-of=S-1-5-21-298725999-1398125-441284377-12796 > auth_param basic children 100 > auth_param basic realm Kerem adja meg felhasznalonevet es jelszavat > auth_param basic credentialsttl 1 hours > > acl AuthorizedUsers proxy_auth REQUIRED > > http_access allow AuthorizedUsers > http_access deny all Perhaps by removing the basic authenticator? -- A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing on usenet and in e-mail?
[squid-users] ntlm auth, unauthorized users without popup window
Hi! I've successfully configured squid to use ntlm authentication. If the authenticated users go through the proxy, the web page will be loaded. In the opposite side, if any unauthorized users want to browse, popup window appears (username, password). I know is the default behaviour. Is there any chance to not to popup authentication window in this case? auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp --require-membership-of=S-1-5-21-298725999-1398125-441284377-12796 auth_param ntlm children 100 auth_param ntlm max_challenge_reuses 100 auth_param ntlm max_challenge_lifetime 5 minutes auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic --require-membership-of=S-1-5-21-298725999-1398125-441284377-12796 auth_param basic children 100 auth_param basic realm Kerem adja meg felhasznalonevet es jelszavat auth_param basic credentialsttl 1 hours acl AuthorizedUsers proxy_auth REQUIRED http_access allow AuthorizedUsers http_access deny all Thanks in advance, Szabolcs Horvath